Product review: Yoggie's Yoggie Gatekeeper Pro - Information Security Magazine

Product review: Yoggie's Yoggie Gatekeeper Pro

ENDPOINT SECURITY


Yoggie Gatekeeper Pro
REVIEWED BY PETER GIANNACOPOULOS

Yoggie
Price: $220

@exb

    Requires Free Membership to View

    Login

    SearchSecurity.com members gain immediate and unlimited access to breaking industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.com today!

    Michael S. Mimoso, Editorial Director

    By submitting your registration information to SearchSecurity.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSecurity.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.
@exe

Yoggie Gatekeeper Pro is an interesting new take on the perennial problem of using personal firewalls to secure individual PCs. It is a Linux-based USB device that serves as a full-blown firewall, VPN gateway and integrated antivirus/Web filter gateway. All of this capability is packed into a form factor that is approximately the size of a pager.

We tested the standalone version to look at the core capabilities of this unique product, but an enterprise version is available that provides centralized management, policy control and reporting.


Policy ControlB  
The policy control is rather basic, but effective. The administrator can open any necessary firewall ports, configure IP addresses and perform other tasks. Some rather pleasant surprises included a fairly effective Web filter control that can block access to malicious Web sites or those that violate corporate policies, such as adult entertainment and gambling sites. It also offers integrated antivirus and automatic updating of the device firmware and virus definitions.

These features are excellent capabilities bundled into the basic product, but we would have liked more fine-grained control.


EffectivenessA  
We ran several Nessus and Nmap scans as well as some custom penetration testing tools against the Yoggie-protected test system to see if we could either take out the device, or tunnel a way through it. The Gatekeeper Pro passed with flying colors and shrugged off the attacks, while allowing the test system continued access to the Internet.

We enabled Web filtering and attempted to hit some dubious Web sites. We were denied access, and all the attempts were logged. Gatekeeper Pro's antivirus likewise caught the EICAR test suite--as expected--as well as the sample viruses we had in the lab. Gatekeeper Pro worked as advertised.


Configuration/ManagementB+  
Installation is gloriously simple: Plug in the device to the USB port of your PC or laptop, connect your Ethernet port to the clearly labeled PC port on the device using the bundled cable, connect your broadband connection to the Net port, and you're ready to surf the Web. If you plan to use the Gatekeeper Pro with a WLAN connection, you'll need to install a driver.

Configuring the device is accomplished through a built-in Web GUI that will immediately look familiar to anyone who has set up any type of home networking equipment from D-Link or Linksys.

Though effective, the Web GUI is somewhat Spartan. For example, the user is allowed to choose from low, medium or high security levels, but there is no clear explanation of the specific differences between the levels, either in the online help or in the product documentation. We set the security level to high and were able to perform common tasks such as instant messaging, Web browsing and email without any difficulties.


Verdict
We see a definite sweet spot in the market for Yoggie's offerings, especially the enterprise version in large environments that want to protect disparate endpoints without getting bogged down with configuring individual hosts.


Testing methodology: We installed Yoggie on a Windows XP SP2 test machine. We used the EICAR test suite, along with samples of known viruses, to validate the antivirus capabilities, and used Nmap to verify open and closed ports on the host.

This was first published in May 2007